Closed Bug 1658793 Opened 5 years ago Closed 10 months ago

Add Cybertrust Japan SecureSign Roots (CA12, CA14 and CA15)

Categories

(CA Program :: CA Certificate Root Program, task, P2)

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: bwilson, Assigned: bwilson)

References

Details

(Whiteboard: [ca approved] - in NSS 3.104, Firefox 131, EV enabled in FF 132)

Attachments

(28 files)

63.56 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
340.30 KB, application/pdf
Details
904.16 KB, application/pdf
Details
1.08 MB, application/pdf
Details
454.08 KB, application/pdf
Details
556.56 KB, application/pdf
Details
489.71 KB, application/pdf
Details
64.76 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
69.87 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
628.80 KB, application/pdf
Details
206.87 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
232.72 KB, application/pdf
Details
225.60 KB, application/pdf
Details
228.26 KB, application/pdf
Details
116.79 KB, application/pdf
Details
932.62 KB, application/pdf
Details
1.89 MB, application/pdf
Details
857.37 KB, application/pdf
Details
1.66 MB, application/pdf
Details
1.03 MB, application/pdf
Details
518.32 KB, application/pdf
Details
623.17 KB, application/pdf
Details
434.73 KB, application/pdf
Details
416.95 KB, application/pdf
Details
396.96 KB, application/pdf
Details
210.58 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
208.01 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
1.01 MB, application/pdf
Details

This root inclusion request is in the CCADB as CCADB Case 585.
https://ccadb-public.secure.force.com/mozilla/PrintViewForCase?CaseNumber=00000585

Flags: needinfo?(bwilson)

Thanks Ben-san for opening thread.
We are in conducting point-in-time audit for our new roots, but it takes a long time due to COVID-19.
We will have audit report by the end of September.
After we get the report, we will update this thread.

Just checking in on status of audit reports.
Also, you will need to complete a Baseline Requirements Self-Assessment -
see https://wiki.mozilla.org/CA/BR_Self-Assessment
which links the BR self-assessment spreadsheet template -
https://docs.google.com/spreadsheets/d/1ni41Czial_mggcax8GuCBlInCt1mNOsqbEPzftuAuNQ/edit?usp=sharing

Flags: needinfo?(bwilson)

Do you have any updates on your efforts here?

Flags: needinfo?(masahiro.shikutani)
Priority: -- → P4

On 24-May-2021, I sent an email to applicant's contacts alerting them to the "NEED" info fields in the CCADB. They responded that they would work on them.

Audits and updated CP and CPS received recently and updated in the CCADB. Applicant still needs to complete a Compliance Self Assessment. https://wiki.mozilla.org/CA/Compliance_Self-Assessment

Whiteboard: [ca-verifying] BW 2020-08-12 → [ca-verifying] BW 2021-12-26
Priority: P4 → P3

Redirect a needinfo that is pending on an inactive user to the triage owner.
:kwilson, since the bug has recent activity, could you have a look please?

For more information, please visit auto_nag documentation.

Flags: needinfo?(masahiro.shikutani) → needinfo?(kwilson)
Flags: needinfo?(kwilson) → needinfo?(bwilson)
Flags: needinfo?(bwilson)

I'll start my review of the Self-Assessment along with CP v. 1.13 and CPS v. 1.02.

Priority: P3 → P2
Product: NSS → CA Program

This review of Cybertrust Japan's compliance self-assessment is based on CP version 1.15 and CPS version 1.04.

Thank you very much for the DETAILED ROOT PROGRAM REVIEW/ Reviewer Comments (Column C).
Please find our response to your highlighted areas in yellow, which we have documented in Column D as "Response of CTJ to Reviewer Comments (2023/4/14)" in above attached file (https://bugzilla.mozilla.org/attachment.cgi?id=9328540).

We will update our CP/CPS based Column D within approximately one week.
After we update, we will update this bug again.

Whiteboard: [ca-verifying] BW 2021-12-26 → [ca-ready-for-discussion 2023-04-19]

We have updated our CP/CPS based on Column D in above attached file (https://bugzilla.mozilla.org/attachment.cgi?id=9328540) and some additional consideration. Please note that the URL of CP/CPS is the same as before, but the version and content have been updated.
We have also added some information to the file below in relation to Reviewer Comments (Cell C188).
https://www.cybertrust.ne.jp/ssl/repository/Jurisdiction.pdf
We greatly appreciate your review and comments.

Attached file 03_Linting.pdf

Hello,

Is it possible to upload searchable versions of those PDF documents?

Thank you.

(In reply to Dimitris Zacharopoulos from comment #30)

Hello,

Is it possible to upload searchable versions of those PDF documents?

Thank you.

Hello,

We've uploaded searchable versions of Audit Statements.

Thank you.

On May 10, 2024, this request entered the 6-week public discussion period, https://groups.google.com/a/ccadb.org/g/public/c/4OuyyOD-7ng/m/nl-bbjr-AQAJ

QA Contact: kathleen.a.wilson → bwilson
Whiteboard: [ca-ready-for-discussion 2023-04-19] → [ca-in-discussion 2024-05-10]

The 6-week public discussion ended (https://groups.google.com/a/ccadb.org/g/public/c/4OuyyOD-7ng/m/1ot5MFk4AAAJ) and today starts a 7-day last-call for comments based on this notice of intent to approve this inclusion request:
https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/pJHiCL07E-Q/m/Iw5u64X6AQAJ

Whiteboard: [ca-in-discussion 2024-05-10] → [ca-pending-approval] 2024-07-08

It has been seven days. On behalf of Mozilla, this request from Cybertrust Japan to include the following root certificates is Approved for the websites trust bit with EV enablement:

  • SecureSign Root CA12
  • SecureSign Root CA14
  • SecureSign Root CA15

I will file NSS/PSM bugs for the approved changes.

Flags: needinfo?(bwilson)
Flags: needinfo?(bwilson)
Whiteboard: [ca-pending-approval] 2024-07-08 → [ca-approved] - pending NSS and PSM code changes
Depends on: 1908006

These roots are now in NSS 3.104 and Nightly 131.0a1 (2024-08-28). I will open a new bug to add EV.

Flags: needinfo?(bwilson)
Whiteboard: [ca-approved] - pending NSS and PSM code changes → [ca-approved] - pending PSM code changes
Flags: needinfo?(bwilson)
Whiteboard: [ca-approved] - pending PSM code changes → [ca-included] - pending PSM code changes for EV
Depends on: 1915651
Whiteboard: [ca-included] - pending PSM code changes for EV → [ca approved] - in NSS NSS 3.104, Firefox 131, EV enabled in FF 132
Status: ASSIGNED → RESOLVED
Closed: 10 months ago
Resolution: --- → FIXED
Whiteboard: [ca approved] - in NSS NSS 3.104, Firefox 131, EV enabled in FF 132 → [ca approved] - in NSS 3.104, Firefox 131, EV enabled in FF 132
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: